automatic reverse and forwarding zones
Matus UHLAR - fantomas
uhlar at fantomas.sk
Mon Nov 7 14:23:30 UTC 2022
>>On 28.10.22 08:26, Ondřej Surý wrote:
>>>BIND 9 have support for writing plugins, and we would accept a
>>>well written plugin that would allow generating the forward/reverse plugins on the fly.
>>>
>>>There’s already a feature request for it here:
>>>https://gitlab.isc.org/isc-projects/bind9/-/issues/1586
>On 28. 10. 22 9:29, Matus UHLAR - fantomas wrote:
>>this request for ipv4 too.
>>
>>I really don't think making generic named for ipv6 addresses within
>>range bigger then e.g. /112 (64Ki addresses) makes any sense.
>>
>>prehaps it may for small subsets of IP addresses
>>
>>/64 is 18446744073709551616 addresses, that can't be scanned in
>>meaningful time and this number of DNS records would just mess up
>>any DNS servers' memory.
>>
>>making BIND resilient against overflowing memory this way would make
>>more sense than creating generic addresses.
On 07.11.22 15:06, Petr Špaček wrote:
>Yes, that's exactly why plugin is needed. The plugin can generate
>answers on the fly without having all of them in memory.
what about BIND receiving those records?
I don't want my resolving DNS server to fill out cache by reverse records of
any remote ipv6 range/ranges.
We'd need to clean those too.
--
Matus UHLAR - fantomas, uhlar at fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Spam = (S)tupid (P)eople's (A)dvertising (M)ethod
More information about the bind-users
mailing list